FCC Crackdown on Data Abuses by US Wireless Carriers Sends Dangerous Message on Privacy

The News:  News of the week was the FCC crackdown on data abuses — specifically location data abuses — by US wireless carriers. This week, the US Federal Communications Commission (FCC) unveiled its proposal for fines to be leveled against the US’ largest wireless carriers — Verizon, AT&T, Sprint, and T-Mobile — for allegedly having shared their customers’ real-time location data with third parties without their knowledge or consent. In support of this proposal, the FCC argues that this practice violates federal law. Read the full FCC proposal here.

FCC Crackdown on Data Abuses by US Wireless Carriers Sends Dangerous Message on Privacy

Analyst Take:  You may recall the 2018 scandal, in which cell phone location data was discovered to be readily available to bounty hunters for a few hundred dollars. This latest move by the FCC and its claim that this practice violates federal law, appears to be the outcome of that investigation, which uncovered that wireless carriers were quietly sharing their customers’ real-time location data with third party aggregators. Per the proposal, the FCC’s fines to carriers will total $200M, and is broken down as follows:

  • T-Mobile: Roughly $91 million
  • AT&T: Roughly $57 million
  • Verizon: Roughly $48 million
  • Sprint: Roughly $12 million

FCC Chairman Ajit Pai’s statement on the matter is that the FCC “took decisive actions to protect American consumers, and we are confident in the balance we struck in this case.”

Let’s Discuss Those “Decisive Actions to Protect American Consumers” Shall We?

This FCC crackdown on data abuse seems like big news, right? While the notion that the FCC taking “actions to protect American consumers” would not normally, raise eyebrows, the severity of the fines — or rather the lack thereof — does. FCC Commissioner Jessica Rosenworcel was immediately critical of the light-handed fines, which US Senator Ron Wyden (D-Ore.) called “comically inadequate.” To their point, AT&T generated $181.74 billion dollars in 2019, Verizon $130.86 billion, T-Mobile over $40 billion, and Sprint $33.6 billion. Since the fines proposed by the FCC barely qualify as a rounding error for any of these companies, and consequently don’t seem effective either as a punitive measure or as a deterrent, the FCC’s “decisive actions” seem, as Commissioner Rosenworcel stated, “a dollar short” and, in my opinion, not particularly decisive at that.

Wireless carriers, however, should take the FCC’s reluctance to push back against their behavior as very good news.

From a consumer protection standpoint, however, I fail to see how proposing anemic fines on companies that — based on the investigation’s findings — appear to have so grossly abused the trust of their customers for years, will ultimately protect those very same consumers in the future. This is particularly true if the message being telegraphed by the FCC is that there is little will within the agency to truly crack down on such abuses, and/or hold wireless carriers accountable when they break federal law. 

Where the FCC Failed

What may be equally concerning to consumers is the way that the FCC apparently conducted its investigation. For starters, the FCC does not appear to have attempted to gauge the scale of the problem, let alone quantify what harm, if any, resulted from the carriers’ actions.

As a benchmarking measure, the FCC should have sought to gauge how many times individual consumers’ privacy was violated, and how much revenue the carriers netted from these abuses.

Instead, the FCC merely merely relied on asking the carriers to provide them with a list of contracts with third parties associated with the practice under scrutiny. In addition, the FCC doesn’t appear interested in going after third party companies that carriers signed location-selling agreements with. While the agency may not have the authority to do so itself as these third parties do not necessarily fall under its purview, it could have easily worked with the DOJ and state prosecutors to hold them accountable in parallel with its own actions against the wireless carriers. Further, as Commissioner Rosenworcel notes in her comments, the FCC incomprehensibly “heavily discounted” the fines that the carriers potentially owed under the law in addition to disregarding the scope of the problem.

She states: “The agency proposes a $40,000 fine for the violation of our rules — but only the first day. For every day after that, it reduces to $2,500 per violation. […] On top of that, the agency gives each carrier a thirty day pass from this calculation. This thirty day ‘get out of jail free’ card is plucked from thin air.” And last but certainly not least, following previous controversial behavior from the FCC under Pai, the FCC again did not seek to hear from the public. In addition, as far as I can tell the FCC did not issue subpoenas to third parties involved in the scheme, and initially failed to push back against the carriers’ request to keep their responses confidential, until commissioners intervened.

This daisy chain of decisions to attenuate penalties and liabilities against offending carriers doesn’t quite make sense in the scope of a federal agency engaging in what should be a “decisive” enforcement action to both punish wrongdoing and protect consumers.

What’s Next [and it’s not much]

So what’s next? The four carriers have 30 days to comment on the proposed fines, challenge the findings, or ask for an extension. The FCC, for its part, has no set timeline for finalizing the amount of the fines, and could theoretically choose never to collect the fines at all. It is also possible that wireless carriers may not stop selling real-time location data to third-party aggregators as a result of this tangle with the FCC—it’s not as if there’s really any incentive to do so.

Conclusions: The FCC’s Behavior Says a Lot About Its Lack of Regard for Consumer Privacy

Regardless of the FCC’s decisions from here on out, my read on what this decision seems to indicate is threefold:

  1. The FCC currently does not appear to have the will to truly crack down on carriers that violate federal law, at least when it pertains to consumer privacy.
  2. The FCC’s behavior throughout this case has, in my view, communicated to US wireless carriers that, superficial fines aside, they can continue to abuse their customers’ privacy, and profit from said abuses, with some degree of impunity. However you may feel about that stance, this is excellent news for wireless carriers. It is obviously, however, not great news for consumers.
  3. The FCC’s message of near-non-enforcement is likely being heard loudly and clearly by ALL companies that fall under its purview, not just wireless carriers, including but not limited to ISPs, technology companies whose devices and services collect location data on consumers, and obviously social networks. 

This is one I’ll be watching with interest.

Futurum Research provides industry research and analysis. These columns are for educational purposes only and should not be considered in any way investment advice.

Read more analysis from Futurum Research:

Dell Tech Q4 Results: Overall Solid Finish to a Solid Year

Google Applies for Permission to Resume Business with Huawei

Intel is all in on 5G Networks Salesforce Q4 Results Include Surprise as Co-CEO Keith Block Resigns

Author Information

Olivier Blanchard

Olivier Blanchard is Research Director, Intelligent Devices. He covers edge semiconductors and intelligent AI-capable devices for Futurum. In addition to having co-authored several books about digital transformation and AI with Futurum Group CEO Daniel Newman, Blanchard brings considerable experience demystifying new and emerging technologies, advising clients on how best to future-proof their organizations, and helping maximize the positive impacts of technology disruption while mitigating their potentially negative effects. Follow his extended analysis on X and LinkedIn.

Related Insights
Kore.ai and Atos Bet on Sovereign Agentic AI, Will UK Enterprises Demand Proof, Not Promises?
July 8, 2026

Kore.ai and Atos Bet on Sovereign Agentic AI, Will UK Enterprises Demand Proof, Not Promises?

Kore.ai and Atos announce a strategic partnership to deliver Sovereign AI solutions to UK organizations, addressing data residency and compliance requirements in the rapidly expanding $181B AI platforms market....
ServiceNow and Accenture Bet on Migration to Win Enterprise Risk
July 7, 2026

ServiceNow and Accenture Bet on Migration to Win Enterprise Risk

Fernando Montenegro, VP at The Futurum Group, examines the ServiceNow and Accenture cybersecurity offering, and why its AI-powered migration and the Armis acquisition point to a bid to become the...
Compliance as Code Is No Longer Optional: Why Manual Reviews Can’t Keep Up
July 4, 2026

Compliance as Code Is No Longer Optional: Why Manual Reviews Can’t Keep Up

Qodo's 'Compliance as Code' framework automates enterprise AI compliance through PR checks, solving the data privacy and security gaps that plague manual reviews at scale....
Brave's Browser Containers Raise the Bar for Privacy and Workflow Flexibility
July 3, 2026

Brave’s Browser Containers Raise the Bar for Privacy and Workflow Flexibility

As AI platform adoption accelerates to $181.3B projected market size, Brave's v1.92 release introduces native browser containers addressing data privacy concerns for 52.6% of enterprise decision makers managing multi-cloud AI...
The Hard(er) Challenge in Agent Governance Is Authorization
June 25, 2026

The Hard(er) Challenge in Agent Governance Is Authorization

Fernando Montenegro, VP at Futurum Group, argues that the launch of the Agent Control Standard does not close the agent governance gap, and that "shrinkage," not universal coverage, is the...
Can Cisco Widen Splunk’s Agentic SOC Capabilities With WideField
June 25, 2026

Can Cisco Widen Splunk’s Agentic SOC Capabilities With WideField?

Fernando Montenegro, VP at Futurum, examines Cisco's planned acquisition of WideField Security and how deeper identity and session intelligence could strengthen Agentic SOC capabilities as enterprises deploy more AI agents...

Book a Demo

Welcome

The vision behind everything in Futurum’s Custom Research practice is this: research should show you what is happening, what comes next, and what to do about it. It should be personal to each audience, easy for people to grasp, and structured so LLMs can reason over it accurately. And it should be fast and turnkey; you want answers now, not another project to carry for quarters.

Whether you are defining business, channel, or go-to-market strategy; evaluating vendors or justifying ROI; or commissioning research to fill an emerging market need, we have your back, with a program that answers your questions with the objectivity and credibility to drive real decisions.

To do it, we bring unmatched data to bear: Futurum research, surveys, and market projections; validated market feeds; ETR’s 15 years of insight from 10,000 technology decision-makers; G2’s buyer and user data; and what our analysts hear every day. Add leading primary collection, from AI-moderated voice interviews to surveys and analyst-led interviews, all turnkey, and every project comes out credible, nuanced, and actionable.

And we don’t just drop the results in your lap. For internal work, we provide analyst-led sessions, interactive dashboards, and a range of formats. For market-facing work, Futurum delivers turnkey activation and amplification that actually gets seen, by people and by LLMs, through our media and share of voice. This is research that moves decisions and markets.

We will meet you wherever you are, from a fast-turn brief to a multi-year program, and shape the work to your goals, timeline, and budget. The right program for your moment.

If any of this is useful, I would love to talk.

Benjamin Brown, VP Custom Research, Futurum Research

Benjamin Brown

VP, Custom Research · The Futurum Group

Newsletter Sign-up Form

Get important insights straight to your inbox, receive first looks at eBooks, exclusive event invitations, custom content, and more. We promise not to spam you or sell your name to anyone. You can always unsubscribe at any time.

All fields are required






Thank you, we received your request, a member of our team will be in contact with you.